Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wb0q_X1OJgbg-ZcRDdVrIOtTLCE.roa
File: wb0q_X1OJgbg-ZcRDdVrIOtTLCE.roa (raw, json)
Hash identifier: JPOa2vxo9C4T/7ZDWWLHyB81EoFOYI9pPWBySMs3vtg=
Subject key identifier: C1:BD:2A:FD:7D:4E:26:06:E0:F9:97:11:0D:D5:6B:20:EB:53:2C:21
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBE4936C440B541D436C1B40CBEC59AAC
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wb0q_X1OJgbg-ZcRDdVrIOtTLCE.roa
Signing time: Sun 31 Dec 2023 05:11:58 +0000
ROA not before: Sun 31 Dec 2023 05:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:be:49:36:c4:40:b5:41:d4:36:c1:b4:0c:be:c5:9a:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 31 05:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1bd2afd7d4e2606e0f997110dd56b20eb532c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:b3:5f:c7:40:c9:fc:24:76:ce:9a:9a:5e:
2c:32:23:a5:54:b4:0f:a3:8c:f1:d3:b4:d9:2d:6e:
05:ff:97:e6:bc:0a:ec:5c:43:e5:6c:0f:e5:7f:af:
af:b7:d7:af:5b:1a:51:8d:e1:1c:fd:87:67:55:82:
a6:b4:25:48:e2:7b:29:dd:8f:99:01:32:b2:ff:c0:
54:dc:be:c5:b6:44:bd:99:ec:22:a6:91:34:9c:f9:
ec:4b:97:9a:e0:ff:20:35:45:3c:0f:df:c3:00:99:
eb:b8:f0:bd:5d:fd:4a:00:1b:90:a5:99:86:b1:ae:
dc:c5:16:8b:4f:78:52:26:6e:9b:26:5a:b6:81:d3:
a7:5a:18:5b:37:b8:1e:01:17:47:71:3a:3a:c2:9c:
26:f9:14:40:57:8f:da:f3:d8:2d:35:b0:32:1f:ff:
94:69:2a:64:91:38:c4:87:1c:56:49:15:fb:00:05:
70:2e:0d:37:6c:61:07:28:24:c1:e0:92:82:03:fa:
4c:54:b7:09:09:1e:45:9a:da:2e:34:88:0b:ee:3f:
4e:4d:4d:74:89:01:d0:2c:0f:b7:82:34:87:9a:97:
b3:8d:d8:1b:21:7d:9c:c2:47:c2:d3:32:59:52:0d:
aa:9c:51:aa:0b:2f:fc:1e:bc:74:ee:4d:48:35:08:
eb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BD:2A:FD:7D:4E:26:06:E0:F9:97:11:0D:D5:6B:20:EB:53:2C:21
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wb0q_X1OJgbg-ZcRDdVrIOtTLCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:dc:e1:cd:3c:51:a3:88:61:ed:f8:73:6a:84:50:84:ae:96:
c0:60:7c:8b:9d:32:b4:d3:89:aa:59:13:a9:b7:60:2a:6a:68:
7b:a2:99:71:d1:ee:5c:f8:45:58:dc:d5:54:e7:c7:61:90:e1:
ae:08:db:89:42:06:c5:51:91:60:fa:28:1c:18:d0:15:3c:b3:
9b:2c:06:89:63:59:e5:c2:7b:55:e0:c9:3b:2d:a6:5d:7d:49:
d6:c5:5d:07:55:b8:67:d3:af:95:88:4a:10:8e:f0:48:3e:f9:
e2:3f:32:e3:39:43:2f:5b:51:9d:ac:c3:12:58:8b:3b:31:6e:
6b:ee:ca:f7:14:f7:8b:d3:da:03:17:37:79:14:aa:34:92:31:
5d:1a:42:aa:3e:7c:7b:a6:a4:4b:71:9f:cf:84:c3:b9:3d:42:
1e:24:0b:ce:9a:68:27:95:f2:b3:1e:93:c3:02:85:51:e9:94:
2b:dc:25:83:ab:ab:b1:d2:f8:f0:d1:d8:f9:00:fa:20:f5:92:
ca:c9:3f:79:50:b3:c3:41:f9:df:32:3b:cd:01:cf:09:3d:03:
e7:74:1c:14:03:9f:7d:50:0b:88:4d:e8:49:5c:7d:2c:4a:40:
8e:42:c6:fe:a5:7a:b8:01:8e:14:81:33:36:8b:58:a1:6c:d0:
ee:1c:29:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org